Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/wOOtdr3jIJoxcv_uB12PoeCt_9s.roa
File: wOOtdr3jIJoxcv_uB12PoeCt_9s.roa (raw, json)
Hash identifier: ibzyK9cg9J3Y1R7XpL0VDSrgETKq93SNi4PL+xWXqBk=
Subject key identifier: C0:E3:AD:76:BD:E3:20:9A:31:72:FF:EE:07:5D:8F:A1:E0:AD:FF:DB
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0186880C55223E66E4AF53FF354AB0AA9B20
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/wOOtdr3jIJoxcv_uB12PoeCt_9s.roa
Signing time: Sat 25 Feb 2023 10:09:14 +0000
ROA not before: Sat 25 Feb 2023 10:09:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 185.155.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 27 Feb 2023 07:41:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:88:0c:55:22:3e:66:e4:af:53:ff:35:4a:b0:aa:9b:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Feb 25 10:09:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c0e3ad76bde3209a3172ffee075d8fa1e0adffdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:aa:9b:4a:6c:69:53:ab:67:19:5f:e4:71:f8:
58:2e:aa:df:aa:4f:4f:b1:73:42:27:75:ad:09:f9:
e1:80:46:9c:89:43:d4:41:41:bd:fa:16:6f:9f:4d:
15:27:4b:61:77:65:40:38:84:6b:65:71:a7:ba:63:
3d:3d:62:25:18:01:f3:a4:2a:78:b0:26:b8:5a:94:
b0:6d:a0:0e:77:23:f3:d0:20:8c:16:28:a6:4c:8c:
fc:6e:21:d9:d9:18:9c:5f:ae:68:57:36:2e:d8:ad:
42:5e:7e:92:ad:5b:92:8c:a1:69:48:c2:21:66:a6:
6c:0f:53:c6:fd:9f:18:a7:77:db:43:c3:3b:49:56:
4f:f9:43:13:5a:96:f1:ce:4c:e3:7d:97:92:0a:24:
be:03:db:3b:4b:77:d8:53:7b:22:47:a0:8b:4e:a7:
01:15:cc:85:91:e1:35:b3:16:3c:48:3c:39:9d:72:
a0:17:d3:08:ef:b3:31:32:67:f7:fe:8c:5c:52:95:
a3:2a:54:1b:cf:6a:9c:9b:22:77:27:bb:d2:df:dd:
8b:a4:ce:64:6f:ed:76:13:9d:a4:cc:1f:b1:c5:64:
5a:89:99:94:0f:68:27:53:21:0b:47:01:8e:7c:d0:
14:90:f4:76:d8:1a:1f:a1:7e:85:48:31:87:02:85:
e0:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:E3:AD:76:BD:E3:20:9A:31:72:FF:EE:07:5D:8F:A1:E0:AD:FF:DB
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/wOOtdr3jIJoxcv_uB12PoeCt_9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.234.0/24
Signature Algorithm: sha256WithRSAEncryption
58:fa:fb:48:15:81:94:05:82:bb:bf:ae:10:bd:fd:a1:bd:bf:
99:a4:73:65:22:ea:1f:ae:42:27:84:0c:db:34:d7:3d:7d:f3:
ee:c2:39:88:38:3a:29:e3:d1:62:d6:e8:6e:60:c1:1b:6c:92:
7c:0b:30:f9:28:1c:79:87:0d:0d:7a:a4:54:56:48:1f:2a:45:
be:ed:9e:f6:41:5f:1e:a7:6c:27:4f:c7:2c:19:a8:f8:69:37:
b1:2b:9d:c4:91:b0:cc:9c:84:d3:df:f3:b0:f2:86:df:e6:45:
8d:b6:73:04:02:6e:3d:e2:0d:cb:b7:a3:da:c4:e1:14:c4:e8:
c8:97:06:a1:0d:2a:35:14:ae:a1:ec:56:45:6d:fd:e7:a5:c4:
79:47:0a:d2:6b:99:08:bd:08:34:ae:74:92:4e:93:3a:5f:63:
60:7b:8f:4a:7b:be:75:eb:88:c2:ef:b0:c3:db:f2:50:62:ff:
50:41:bc:5a:09:e2:5d:51:a7:ab:a9:f6:45:64:23:20:86:b7:
af:9c:49:3f:39:b0:28:f0:93:80:a6:23:a0:bc:aa:29:c6:b1:
bf:54:8c:07:2b:42:0c:9c:4f:78:47:dd:f9:af:3e:8c:e0:a3:
02:69:a9:88:51:c1:f8:2c:a4:ee:d4:77:37:72:bc:8d:f3:63:
a7:f6:bf:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:03 2024 by rpki-client on console-ams.rpki-client.org